Denying applications
| Article:HOWTO63553 | | | Created: 2011-12-16 | | | Updated: 2012-04-20 | | | Article URL http://www.symantec.com/docs/HOWTO63553 |
Application metering lets you deny multiple applications from running on target computers.
To deny applications from running, you configure the predefined Blacklisted Applications policy. The Blacklisted Applications policy is enabled by default. You can add as many applications to this policy as you want.
You can add software applications to the Blacklisted Applications policy in the following ways:
Define software applications on the Blacklisted Applications policy page.
The application that you want to deny may or may not be installed and discovered on your client computers.
See “To deny software applications on the Blacklisted Applications policy page”.
Blacklist software applications in the Software Catalog.
The application that you want to deny is already installed and discovered on your client computers. You can see it in the Software Catalog, under Newly discovered / undefined software.
See “To deny software applications in the Software Catalog”.
When you deny any software component, the software component is scanned looking for an .exe file. If that software component contains any .exe file, it is denied. A separate rule is created for every .exe file.
This task is a step in the process for metering and denying applications.
See Metering and denying applications.
To deny software applications on the Blacklisted Applications policy page
In the Symantec Management Console, on the Manage menu, click Policies.
In the left pane, expand Software > Application Metering > Blacklisted Applications.
On the Blacklisted Applications policy page, on the Software tab, define the applications that you want to deny.
(Optional) On the policy page, on the Options tab, configure the policy options for the denied applications if the predefined options do not meet your needs.
For example, you can configure the policy options in the following ways:
To record the deny events and send the records to the CMDB every week, check Record usage events, and then, in the drop-down lists, click Deny and Weekly.
See About application metering start, stop, and denial events.
To send an email that reports the deny events, in the drop-down list, click Send an email; in the Mail Settings dialog box, enter the recipient's email address in the E-mail ID field, type a subject and text for the email, and then click OK.
To prompt a user with a message when the user attempts to start a denied application, check Inform user and type the text of the message.
To deny software applications in the Software Catalog
In the Symantec Management Console, on the Manage menu, click Software Catalog.
On the Software Catalog page, under Newly discovered/undefined software, right-click the application that you want to add to the Blacklisted Applications policy, and then click Actions > Blacklist Application.
If the software component is successfully added to the Blacklisted Applications policy, the following message is displayed in a dialog box:
"The following software has been successfully marked as blacklisted."
If the software component cannot be denied, the following message is displayed in a dialog:
"The following software cannot be blacklisted because it is not associated with any executable files."
|
|
Legacy ID
v20626885_v66534462
Article URL http://www.symantec.com/docs/HOWTO63553
Terms of use for this information are found in Legal Notices
Thank you.